MongoDB Realm’s SDKs provide the ability to register users using an email and password.
However I can’t find anything in the documentation describing how passwords are stored. What hashing scheme is used? Are passwords salted?
The only information I can find is “the password must be between 6 and 128 characters”. Are there are restrictions on characters used? Are passwords expired?
I’d like to know as much as possible so I can assess the security of private user data.